THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
Param | Description | Default |
---|---|---|
identity.url | The URL to redirect incoming requests that do not contain the expected cookie and presumably to facilitate an authentication challenge. | none |
service.url | The URL back to the KnoxSSO endpoint for the IdP to redirect the browser after authentication. | none |
keystore.url | The location of the keystore with the public cert of the IdP for token validation. BUG: this is currently hardcoded to gateway.jks | gateway.jks |
validating.alias.key | This is the idp domain which is used as the alias for looking up the alias for the cert to validate incoming tokens with - ie. idp.example.com | none |
validating.alias.value | This is the alias for the actual cert to use for the idp domain - ie. server.crtservercert - and is used by picket link to get to the public key for the IdP in order to verify the presented token. | none |
clock.skew.milis | The clock skew to use during the validation of tokens | none |
...